Table of Contents
Who we are
DML Connect (DML)is a trading name of DataMixx Limited and is a data management company.
Our address is:
Peper Harow Park
We are a registered company in England and Wales under company number 10432250.
Our ICO registration number is ZA212218.
DML works with a number of partners who collect the data we hold via online competitions, comparison websites, lifestyle clubs, and offer websites. All data is owned by the contributing source partner through which the data was originally collected and any partner can choose to withdraw access to it at any time.
We are committed to being transparent about how your personal data has been collected, how we use your data, how we keep your data safe, and your rights to access, amend, object or delete the data we hold about you. We hope that this privacy notice explains that clearly. If you feel there is a question that is not answered here, or if you would like more information about how we process your data, you can contact us at any time by emailing email@example.com or writing to us at the address above.
Purpose of data processing
DML specialises in the careful management and centralisation of consumer database access in order to support our legitimate interests covering the sharing of data to support enforcement, verification, credit and risk management, revenue collection, database tracing activities, and efficient planning and fulfillment of direct marketing campaigns.
Credit reference agencies, identity verification, fraud prevention service providers, consumer brands, and marketing service providers use us when they wish to rent data on defined and controlled usage terms without having to go to multiple different sources.
All data partners are declared to clients to enable source audits and undergo due diligence checks prior to using their data.
Client activities supported
Enforcement, ID verification, credit and risk management, revenue collection, database tracing activities such as linking small pieces of information from multiple data sources to enable these activities.
The sending of relevant marketing communications
Verification and enhancement of customer and marketing databases
Enhance targeting relevance through market research, analysis, segmentation, and profiling
Where do we get your data from?
We compile our database using carefully vetted partners who have collected your data through:
Online Comparison Websites
Online Lifestyle Clubs
Online Offer websites
DML Connect only works with partners we think you can trust with your data. In each case, we ensure that our partners have collected your data fairly and compliantly and that you have been informed that your data will be shared with DML Connect (normally in their own privacy notice). In addition, we ensure that they have been clear and transparent about the purposes for which DML Connect will use your data.
You have the right to withdraw your consent or object to our processing of your data at any time by contacting us using the details at the top of this policy.
A full list of data partners will be provided upon request.
What type of data do we hold?
We hold the personal data that you have provided to our data partners. This may vary from partner to partner, but this includes names, addresses, emails, telephone numbers, dates of birth, lifestyle and demographic data, insurance renewal month (where provided), whether children are present, and whether they are under 16 (this is a simple flag, not data about the children)
We do not hold or process any of the following data about you:
Data relating to children
What we use your data for
Use of postal data
We make your postal address available for organisations to use for fraud prevention and identity verification.
Unless registered with the MPS (Mail Preference Service) we will also share your address for direct marketing by post, based on the demographic information provided by you at sign up to the data partner.
Use of telephone data
We make your telephone number(s) available for organisations to use for fraud prevention and identity verification.
Unless registered with the TPS (Telephone Preference Service) we will also share your telephone number for direct marketing by live marketing call based on the demographic information provided by you at sign up to the data partner, but not for SMS or automated call marketing.
Use of email
We make your email address available for organisations to use for fraud prevention and identity verification.
If you give permission to be contacted by advertisers via email, DML Connect help to identify relevant advertisers and supports the email communication to you based on the demographic information provided by you at sign up to the data partner.
DML Connect does not sell this information outright to any advertiser. Emails you might receive will be sent on behalf of the source to whom you have given your consent to be contacted and will be identified as having originated from the source you provided consent to.
This approach is described as a 'host emailing' where the 'sender' represents the holder of your consent for such communications. Emails received will be clearly identified as having originated from the original data controller and their contact details will also be provided, as well as the opportunity to unsubscribe from emails from that organisation.
Digital use of Data
We share product data directly with brands and via agencies. We also share data (usually in a form where individuals cannot be directly identified) with other marketing companies such as social media and programmatic platforms. We make sure the recipients of our data are reputable entities by conducting appropriate checks on them. Before we share our data we enter into written agreements with recipients which contain terms that safeguard the data.
We also use data on an ad hoc basis to assist with law enforcement queries or UK Missing Person queries.
Who we share your data with
We share the data you provide with a number of credit/ financial companies. They may combine, analyse and profile your information and share this information with other organisations for the purposes of:
tracing / locating you
verifying your identity
verifying the information they hold about you is correct
We rely on the legitimate interests of these organisations to share your data in this way. If you do not want your data to be used in this way, you can object here
What is our lawful basis for processing your data?
We process your email data for marketing purposes under the consent you have provided to our data partners when they collected your data. If you wish to withdraw your consent please contact us and we will suppress your details.
We use the lawful basis of legitimate interests as a business or those of a third party, for the sharing of (non-MPS) postal information and (non-TPS) telephone numbers for marketing purposes, and email data for the purposes of fraud prevention, tracing, and ID verification.
How long do we keep your data?
The period for which we use personal data varies depending on the individual contract terms with our data partners. When our data partner sends us a refreshed file, any data beyond that partner’s retention period will no longer be in the file, meaning that DML will no longer hold it. Additionally, when DML stop working with a partner, we remove that data from our active systems, and then retain it for a period of 6 months for the purposes of Rights fulfillment (see below), before it is deleted fully.
We also need to retain information if there is a statutory retention period required for legal and regulatory reasons.
How do we keep your data safe?
DML Connect has appropriate technical and organisational measures in place to restrict access to data and these are monitored regularly. We are Cyber Essentials Plus Certified, and systems are pen tested on an annual basis. Access to your personal information is strictly controlled on a ‘need to know’ basis. Staff members are only allowed access to your personal data if they have been sufficiently trained in data management.
Where is your data stored?
We store your personal information in an Amazon Web Service cloud environment located in the UK. We do not transfer your data to any country outside this area.
Under data protection law you have many Rights:
You have the right to ask us for copies of your personal information. This right always applies. There are some exemptions, which means you may not always receive all the information we process.
You have the right to ask us to rectify information you think is inaccurate. You also have the right to ask us to complete the information you think is incomplete. This right always applies.
You have the right to ask us to erase your personal information in certain circumstances.
You have the right to ask us to restrict the processing of your information in certain circumstances.
You have the right to object to processing if we process your information under legitimate interests.
This only applies to the information you have given us. You have the right to ask that we transfer the information you gave us from one organisation to another, or give it to you.
In most cases, we have one month to respond to you.
You also have the right to complain to the Information Commissioner’s Office whose address is Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF.
Their website can be found at https://ico.org.uk
Data Protection Officer
Our Data protection officer can be contacted by emailing:
Or writing to us at:
Data Protection Officer
Peper Harow Park
Tel: 01483 941590